Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/596A8D68F69511EFB3F91658762E951A.roa
File: 596A8D68F69511EFB3F91658762E951A.roa (raw, json)
Hash identifier: 9dS9To42eVFiTb6pl1KY2yPrz+r9KzVPN6u4CUCSAcI=
Subject key identifier: E4:0E:B1:C5:3F:B9:DB:29:B2:0C:22:17:5A:86:59:16:4E:D0:4D:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016E27
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/596A8D68F69511EFB3F91658762E951A.roa
Signing time: Sat 01 Mar 2025 12:04:38 +0000
ROA not before: Sat 01 Mar 2025 12:04:35 +0000
ROA not after: Mon 31 Mar 2025 12:04:35 +0000
asID: 202656
IP address blocks: 154.221.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93735 (0x16e27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 1 12:04:35 2025 GMT
Not After : Mar 31 12:04:35 2025 GMT
Subject: CN=67c2f7d6-958c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d3:88:dc:cd:70:29:af:a1:f1:2b:47:8e:d6:
8e:f3:ae:2e:93:64:ad:12:44:0f:2c:d9:15:74:91:
95:aa:51:fa:65:c6:63:32:6b:0c:1d:39:3c:75:fd:
69:68:69:91:5a:f6:ad:f4:93:a7:4b:fb:10:ac:3f:
dd:5c:af:0b:50:7f:76:82:7f:f2:30:8c:5a:b0:10:
db:7d:5b:ce:80:88:d4:ce:18:dd:0f:d9:23:d5:ff:
39:54:0b:fd:21:58:d6:33:34:e7:f9:59:85:80:b9:
25:8c:0f:1d:c0:a8:8f:01:42:b6:a4:87:23:e2:43:
d6:da:c2:10:46:f8:79:b9:1b:38:d7:2b:54:2d:59:
32:6e:c6:81:02:12:b4:c9:8a:e4:f9:0b:34:52:5a:
06:3b:02:64:01:a8:32:07:fb:c0:cd:9a:eb:ba:61:
c7:22:8b:68:9c:ad:f1:16:34:43:1b:ec:dc:8e:a5:
2d:83:be:4b:5f:cd:c4:e8:3c:2b:05:06:4e:85:46:
e9:48:17:53:7c:ab:a6:4c:ad:2f:42:57:f6:09:c2:
e6:18:16:38:3c:9f:db:d0:6a:36:12:d7:ce:a0:79:
e4:0b:bd:99:ec:d6:fa:1d:de:42:c2:3f:17:99:76:
6d:75:95:95:25:ea:e0:b2:3a:d9:0c:d7:7e:c1:1a:
61:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:0E:B1:C5:3F:B9:DB:29:B2:0C:22:17:5A:86:59:16:4E:D0:4D:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/596A8D68F69511EFB3F91658762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.62.0/24
Signature Algorithm: sha256WithRSAEncryption
36:9b:eb:b6:ce:c5:7a:34:b0:d7:5b:94:ba:d2:89:05:9b:31:
0d:3e:ee:ee:6a:63:83:b8:1e:4e:a8:22:36:3f:88:6c:6d:51:
7e:c8:52:1d:64:18:b2:bb:7b:d5:47:87:7a:2d:2c:02:a3:9b:
66:42:36:a5:d4:98:f1:a9:1a:92:05:1b:6d:11:a3:05:d6:ba:
f0:0c:71:f9:1c:1e:e6:1d:58:14:62:6f:0c:5f:6e:32:70:2e:
e9:6c:69:10:19:c1:30:5d:58:c0:b9:32:a7:65:05:be:3f:b5:
b5:7c:ae:52:74:0a:4a:6d:0d:92:58:96:db:80:92:f0:46:12:
ea:f2:b4:f8:8d:3e:a0:6f:e2:0a:c3:80:11:7b:44:34:13:34:
08:1e:a6:4b:8f:d0:b0:83:bf:e8:06:be:8e:3f:54:a9:d1:0c:
82:c5:f9:e1:c7:c1:c1:8e:ba:2a:8c:2f:40:62:95:9d:b9:37:
e4:2b:e8:1c:c3:57:d0:4b:9b:0a:88:65:f3:a1:06:a5:cf:b0:
eb:66:bc:27:fa:f3:3d:21:f7:6a:91:60:cf:1f:2e:29:01:86:
f8:69:87:e4:df:b4:3e:58:fa:92:92:56:90:c7:59:9f:a6:b8:
05:66:16:87:b4:fb:94:33:a0:32:3a:60:78:b3:df:f0:3c:5f:
12:03:74:21
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAW4nMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzAxMTIwNDM1WhcNMjUwMzMxMTIwNDM1WjAYMRYw
FAYDVQQDEw02N2MyZjdkNi05NThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsNOI3M1wKa+h8StHjtaO864uk2StEkQPLNkVdJGVqlH6ZcZjMmsMHTk8
df1paGmRWvat9JOnS/sQrD/dXK8LUH92gn/yMIxasBDbfVvOgIjUzhjdD9kj1f85
VAv9IVjWMzTn+VmFgLkljA8dwKiPAUK2pIcj4kPW2sIQRvh5uRs41ytULVkybsaB
AhK0yYrk+Qs0UloGOwJkAagyB/vAzZrrumHHIotonK3xFjRDG+zcjqUtg75LX83E
6DwrBQZOhUbpSBdTfKumTK0vQlf2CcLmGBY4PJ/b0Go2EtfOoHnkC72Z7Nb6Hd5C
wj8XmXZtdZWVJergsjrZDNd+wRphzwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOQO
scU/udspsgwiF1qGWRZO0E2VMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81OTZBOEQ2OEY2OTUxMUVGQjNGOTE2NTg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt0+MA0GCSqGSIb3DQEB
CwUAA4IBAQA2m+u2zsV6NLDXW5S60okFmzENPu7uamODuB5OqCI2P4hsbVF+yFId
ZBiyu3vVR4d6LSwCo5tmQjal1JjxqRqSBRttEaMF1rrwDHH5HB7mHVgUYm8MX24y
cC7pbGkQGcEwXVjAuTKnZQW+P7W1fK5SdApKbQ2SWJbbgJLwRhLq8rT4jT6gb+IK
w4ARe0Q0EzQIHqZLj9Cwg7/oBr6OP1Sp0QyCxfnhx8HBjroqjC9AYpWduTfkK+gc
w1fQS5sKiGXzoQalz7DrZrwn+vM9IfdqkWDPHy4pAYb4aYfk37Q+WPqSklaQx1mf
prgFZhaHtPuUM6AyOmB4s9/wPF8SA3Qh
-----END CERTIFICATE-----
Generated at Fri May 9 06:32:48 2025 by rpki-client